[JRACLOUD-93411] Allow 3rd Party Authentication to fetch GraphQL queries

Type: Suggestion
Resolution: Unresolved
Component/s: User Management - Oauth Credentials
Labels:

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

Issue Summary

GraphQL queries (defaultSpacePermissionsQuery, confluenceLegacy_sitePermissionsQuery, and sitePermissionsQuery) are not accessible to third-party OAuth clients due to restrictions, resulting in "OptInException" errors.

Steps to Reproduce

Attempt to fetch default space permissions using the defaultSpacePermissionsQuery.

Observe the error: “Field not allowed for third-party OAuth clients.”

Attempt the same for confluenceLegacy_sitePermissionsQuery and sitePermissionsQuery.

Errors similar to the above will occur for both queries, requiring the @optIn directive and X-ExperimentalApi header, which are not allowed for third-party OAuth clients.

Expected Results

The expected result is to successfully fetch default space permissions and site permissions using the specified GraphQL queries without encountering access restrictions by using 3rd party OAuth.

Actual Results

Queries return errors indicating that they cannot be called by third-party OAuth clients, specifically "OptInException" errors, preventing the retrieval of the necessary permissions data.

Workaround

Currently there is no known workaround for this behavior. A workaround will be added here when available

There are no comments yet on this issue.

Assignee:: Unassigned

Reporter:: Yuvie Naidoo

Votes:: 2 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 27/Feb/2025 5:41 AM

Updated:: 27/Feb/2025 5:42 AM

Jira Platform Cloud

Details

Description

Issue Summary

Steps to Reproduce

Expected Results

Actual Results

Workaround

Attachments

Forms

Activity

People

Dates